Qubes
/
core-admin


			
				
					
						
						
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101
							#!/usr/bin/python2
#
# The Qubes OS Project, http://www.qubes-os.org
#
# Copyright (C) 2010  Marek Marczykowski <marmarek@invisiblethingslab.com>
#
# This program is free software; you can redistribute it and/or
# modify it under the terms of the GNU General Public License
# as published by the Free Software Foundation; either version 2
# of the License, or (at your option) any later version.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.
#
#

from qubes.qubes import QubesVmCollection
import os.path
import os
import sys
import re
import subprocess

qvm_collection = None

def get_netvm_of_vm(vm):
    netvm = vm
    while netvm.netvm is not None:
        netvm = netvm.netvm
    if netvm is None or netvm.name == 'dom0':
        print >> sys.stderr, 'There seems to be no network connected to ClockVM, aborting.'
        sys.exit(1)
    return netvm

def main():
    verbose = False
    if len(sys.argv) > 1 and sys.argv[1] in [ '--verbose', '-v' ]:
        verbose = True
    
    qvm_collection = QubesVmCollection()
    qvm_collection.lock_db_for_reading()
    qvm_collection.load()
    qvm_collection.unlock_db()

    clock_vm = qvm_collection.get_clockvm_vm()

    if clock_vm is None:
        print >> sys.stderr, 'There is no selected ClockVM, aborting.'
        sys.exit(1)

    if not clock_vm.is_running():
        print >> sys.stderr, 'ClockVM not started, exiting!'
        sys.exit(1)

    net_vm = get_netvm_of_vm(clock_vm)
    if verbose:
        print >> sys.stderr, '--> Waiting for network for ClockVM.'

    # Ignore retcode, try even if nm-online failed - user can setup network manually
    #  on-online has timeout 30sec by default
    net_vm.run('nm-online -x', verbose=verbose, wait=True, ignore_stderr=True)

    # Sync clock
    if clock_vm.run('QUBESRPC qubes.SyncNtpClock dom0', user="root", verbose=verbose, wait=True, ignore_stderr=True) != 0:
        print >> sys.stderr, 'Time sync failed, aborting!'
        sys.exit(1)

    # Use the date format based on RFC2822 to avoid localisation issues
    p = clock_vm.run('date -u -R', verbose=verbose, passio_popen=True, ignore_stderr=True)
    date_out = p.stdout.read(100)
    date_out = date_out.strip()
    if not re.match(r'^[A-Za-z]+[,] [0-9][0-9] [A-Za-z]+ [0-9][0-9][0-9][0-9] [0-9][0-9]:[0-9][0-9]:[0-9][0-9] [+]0000$', date_out):
        print >> sys.stderr, date_out, 'Invalid date output, aborting!'
        sys.exit(1)

    # Sync dom0 time
    if verbose:
        print >> sys.stderr, '--> Syncing dom0 clock.'

    subprocess.check_call(['sudo', 'date', '-u', '-R', '-s', date_out])
    subprocess.check_call(['sudo', 'hwclock', '--systohc'])

    # Sync other VMs clock
    for vm in qvm_collection.values():
        if vm.is_running() and vm.qid != 0 and vm.qid != clock_vm.qid:
            if verbose:
                print >> sys.stderr, '--> Syncing \'%s\' clock.' % vm.name
            try:
                vm.run('date -u -R -s "%s"' % date_out, user="root", verbose=verbose)
            except Exception as e:
                print >> sys.stderr, "ERROR syncing time in VM '%s': %s" % (vm.name, str(e))
                pass

main()